$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft File: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft (raw, json) Hash identifier: h1JB46S87HiQs/1xeDERhw2Cu54h+1EFiMaI4R94WgY= Subject key identifier: E5:D8:75:C5:B8:52:63:7A:62:31:EA:8C:CB:4F:64:07:20:D4:1B:F1 Authority key identifier: D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 Certificate issuer: /CN=A91FDD4D/serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft Manifest number: 01CC Signing time: Fri 22 Aug 2025 15:58:18 +0000 Manifest this update: Fri 22 Aug 2025 15:58:18 +0000 Manifest next update: Fri 29 Aug 2025 15:58:18 +0000 Files and hashes: 1: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl (hash: tkmlB1xozEWXCme3vdGaLG+Q37IFL3CEFTGrw9tb1Ug=) 2: 1046CB98D28311EDB1655152C4F9AE02.roa (hash: Kqt9mEj0giKftuB2DBO692CGsOF5kZIoQznyePkJFyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Validity Not Before: Aug 22 15:58:18 2025 GMT Not After : Aug 29 15:58:18 2025 GMT Subject: CN=68a8939a-cbe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:3a:83:6d:e7:08:12:8f:cc:f3:4b:b2:c2:00: 90:be:14:3a:f0:98:7f:ae:a6:b2:f4:69:05:24:d9: 2a:fb:15:e5:0d:0e:60:ae:bb:e8:fe:a0:31:fe:cf: 0b:67:50:a5:ac:3c:07:92:bd:33:a0:35:d9:0f:60: f9:0a:68:49:d7:80:22:03:6f:96:4f:d7:58:e6:c3: b4:97:73:32:24:69:50:ea:a4:2e:83:53:a8:b1:d3: 11:e0:78:be:cb:13:2e:60:b6:2e:d9:1f:9e:f5:57: cf:6a:f8:87:26:61:ce:e9:e1:2b:d4:91:dd:2b:c2: 9f:0f:18:b3:df:43:b4:23:ca:42:f5:58:ba:b2:9d: b7:f4:9b:48:09:74:03:ac:5a:76:e9:19:32:1e:8c: 3f:a4:f7:22:b4:f3:26:ff:bb:be:f3:83:9d:70:18: 97:ea:bc:d9:ae:65:aa:65:43:02:7c:da:44:e0:28: 16:bc:cb:03:4c:d0:f2:a6:68:00:17:fc:4c:6a:a4: bd:88:e0:f2:81:cc:f2:e1:4c:2a:3a:a9:28:0e:f2: 68:ef:b8:f9:69:f4:65:71:44:bd:95:61:19:f4:f8: b1:11:06:8c:c7:98:c2:bc:55:ff:41:83:3e:9b:d0: c2:1d:25:ae:5a:84:46:dd:b6:a8:70:37:a7:e9:e0: 7e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:D8:75:C5:B8:52:63:7A:62:31:EA:8C:CB:4F:64:07:20:D4:1B:F1 X509v3 Authority Key Identifier: keyid:D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:2d:1f:90:56:c0:ef:5f:d6:47:d6:af:02:b7:79:ef:5c:e1: ad:8b:3a:a0:c7:34:35:97:df:ca:66:87:44:20:e8:81:13:57: bf:fc:7e:e9:be:15:71:a9:46:f6:d3:fc:e1:1c:4b:51:c8:8a: 27:10:4a:80:6c:c1:e1:50:f8:fd:8b:30:04:dd:6b:6a:49:02: b7:48:3f:f4:78:a0:a8:65:26:8f:72:83:46:38:38:55:b8:81: b0:8c:00:7c:03:46:0e:05:09:f7:f9:17:50:11:c6:55:dc:c3: 8e:66:ca:c8:6a:f9:ed:bb:db:f3:89:8b:fa:c7:f7:aa:9b:00: 36:8c:38:db:5a:6b:ea:8a:3a:0e:b9:de:a2:88:d7:01:7f:41: 55:08:39:61:2d:ad:c5:d6:3b:17:8b:3c:3d:c2:4f:47:aa:e4: 5f:1f:71:ec:4a:95:9b:14:70:8f:ff:d5:1e:65:4e:2b:4d:9d: 06:ac:e4:e8:d0:ee:59:30:2c:c3:72:98:0e:c5:1a:3c:c8:c7: 8d:d1:86:c6:e2:44:59:53:91:bb:32:78:cb:87:47:1a:67:a4: 9d:52:b8:d0:81:7f:b5:14:7b:1e:cf:ef:3d:8c:59:70:9d:ab: 6e:ba:bf:4f:3b:c8:17:85:4a:1f:1c:d0:a8:4e:87:52:b3:82: 27:3a:6a:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEQ1MEMyOTU3REZBODQwQTk0MzBGQjlFRTI1RDREQ0ZB MTcxMjlDMTgwHhcNMjUwODIyMTU1ODE4WhcNMjUwODI5MTU1ODE4WjAYMRYwFAYD VQQDEw02OGE4OTM5YS1jYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9TqDbecIEo/M80uywgCQvhQ68Jh/rqay9GkFJNkq+xXlDQ5grrvo/qAx/s8L Z1ClrDwHkr0zoDXZD2D5CmhJ14AiA2+WT9dY5sO0l3MyJGlQ6qQug1OosdMR4Hi+ yxMuYLYu2R+e9VfPaviHJmHO6eEr1JHdK8KfDxiz30O0I8pC9Vi6sp239JtICXQD rFp26RkyHow/pPcitPMm/7u+84OdcBiX6rzZrmWqZUMCfNpE4CgWvMsDTNDypmgA F/xMaqS9iODygczy4UwqOqkoDvJo77j5afRlcUS9lWEZ9PixEQaMx5jCvFX/QYM+ m9DCHSWuWoRG3baocDen6eB+HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXYdcW4 UmN6YjHqjMtPZAcg1BvxMB8GA1UdIwQYMBaAFNUMKVffqECpQw+57iXU3PoXEpwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82NjBFMDU4OEQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FLbEREN251SmRUYy1oY1Nu QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzFRd3BWOS1vUUtsREQ3bnVKZFRjLWhjU25CZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC82NjBFMDU4OEQyN0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FL bEREN251SmRUYy1oY1NuQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJLR+QVsDvX9ZH1q8Ct3nvXOGtizqgxzQ1l9/KZodEIOiBE1e//H7p vhVxqUb20/zhHEtRyIonEEqAbMHhUPj9izAE3WtqSQK3SD/0eKCoZSaPcoNGODhV uIGwjAB8A0YOBQn3+RdQEcZV3MOOZsrIavntu9vziYv6x/eqmwA2jDjbWmvqijoO ud6iiNcBf0FVCDlhLa3F1jsXizw9wk9HquRfH3HsSpWbFHCP/9UeZU4rTZ0GrOTo 0O5ZMCzDcpgOxRo8yMeN0YbG4kRZU5G7MnjLh0caZ6SdUrjQgX+1FHsez+89jFlw natuur9PO8gXhUofHNCoTodSs4InOmoG -----END CERTIFICATE-----Generated at Sat Aug 23 17:01:44 2025 by rpki-client